Safe Browsing / Blacklists
Query: http://www.google.com/safebrowsing/diagnostic?site=cacphila.org
Result: This site is not currently listed as suspicious.
Result: This site is not currently listed as suspicious.
Query: http://yandex.com/infected?l10n=en&url=http://cacphila.org/
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Result: The website is marked by Yandex as suspicious. - visiting this web site may harm your computer.
Details are available here.
Malicious Redirects
First query (normal visit):
GET / HTTP/1.1
Host: cacphila.org
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Date: Sat, 27 Dec 2014 01:54:23 GMT
Location: http://www.lightthebridge.ca/ThankYou.aspx
Server: Microsoft-IIS/6.0
Content-Length: 361
Content-Type: text/html
MicrosoftOfficeWebServer: 5.0_Pub
Set-Cookie: ASPSESSIONIDSATCTCCQ=JLEGCFADDGFIIAOOGGAFIGGG; path=/
X-Powered-By: ASP.NET
...361 bytes of data.
GET / HTTP/1.1
Host: cacphila.org
Result:
HTTP/1.1 301 Moved Permanently
Cache-Control: private
Date: Sat, 27 Dec 2014 01:54:23 GMT
Location: http://www.lightthebridge.ca/ThankYou.aspx
Server: Microsoft-IIS/6.0
Content-Length: 361
Content-Type: text/html
MicrosoftOfficeWebServer: 5.0_Pub
Set-Cookie: ASPSESSIONIDSATCTCCQ=JLEGCFADDGFIIAOOGGAFIGGG; path=/
X-Powered-By: ASP.NET
...361 bytes of data.
Second query (visit from search engine):
GET / HTTP/1.1
Host: cacphila.org
Referer: http://www.google.com/search?q=cacphila.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
GET / HTTP/1.1
Host: cacphila.org
Referer: http://www.google.com/search?q=cacphila.org
Result:
The result is similar to the first query. There are no suspicious redirects found.
Scanned pages/files
Request | Server response | Status |
http://cacphila.org/ | HTTP/1.1 301 Moved Permanently Cache-Control: private Date: Sat, 27 Dec 2014 01:54:23 GMT Location: http://www.lightthebridge.ca/ThankYou.aspx Server: Microsoft-IIS/6.0 Content-Length: 361 Content-Type: text/html MicrosoftOfficeWebServer: 5.0_Pub Set-Cookie: ASPSESSIONIDSATCTCCQ=JLEGCFADDGFIIAOOGGAFIGGG; path=/ X-Powered-By: ASP.NET | clean |
http://www.lightthebridge.ca/thankyou.aspx | 200 OK Content-Length: 10691 Content-Type: text/html | clean |
http://www.lightthebridge.ca//use.typekit.net/hmd0uug.js/ | 200 OK Content-Length: 3149 Content-Type: text/html | clean |
http://www.lightthebridge.ca//use.typekit.net/hmd0uug.js/Default.aspx/ | HTTP/1.1 302 Found Cache-Control: private Date: Sat, 27 Dec 2014 01:56:47 GMT Location: /FileNotFound.html?aspxerrorpath=/use.typekit.net/hmd0uug.js/Default.aspx/ Server: Microsoft-IIS/7.5 Content-Length: 191 Content-Type: text/html; charset=utf-8 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://www.lightthebridge.ca/filenotfound.html?aspxerrorpath=/use.typekit.net/hmd0uug.js/default.aspx/ | 200 OK Content-Length: 3149 Content-Type: text/html | clean |
http://www.lightthebridge.ca/filenotfound.html?aspxerrorpath=/use.typekit.net/hmd0uug.js/default.aspx/Default.aspx | 200 OK Content-Length: 3149 Content-Type: text/html | clean |
http://www.lightthebridge.ca/ThankYou.aspx | 200 OK Content-Length: 10691 Content-Type: text/html | clean |
http://goose.satchelbags.eu/canada-goose.txt | 200 OK Content-Length: 0 Content-Type: text/plain | clean |
http://goose.satchelbags.eu/test404page.js | 404 Not Found Content-Length: 1245 Content-Type: text/html | clean |
http://www.lightthebridge.ca/WebResource.axd?d=GAAA0hgzncocoLp2zi0Kr3R60Nx4SAAYuubxWZ1sWRIkoBG7aKDePcni5tV6kaMKWCIqVeFBiwg_ljnIY_RYVm73JsZA0ajKCMic83UiJf41&t=635340237699363331 | HTTP/1.1 302 Found Cache-Control: private Date: Sat, 27 Dec 2014 01:56:51 GMT Location: /FileNotFound.html?aspxerrorpath=/WebResource.axd Server: Microsoft-IIS/7.5 Content-Length: 166 Content-Type: text/html; charset=utf-8 X-AspNet-Version: 4.0.30319 X-Powered-By: ASP.NET | clean |
http://www.lightthebridge.ca/filenotfound.html?aspxerrorpath=/webresource.axd | 200 OK Content-Length: 3149 Content-Type: text/html | clean |
http://www.lightthebridge.ca/filenotfound.html?aspxerrorpath=/Default.aspx | 200 OK Content-Length: 3149 Content-Type: text/html | clean |
http://www.lightthebridge.ca/Default.aspx | 200 OK Content-Length: 6348 Content-Type: text/html | clean |
http://www.lightthebridge.ca/WebResource.axd?d=vOdHerJN5VWnxjBuJW3p1Rz1HLY5ABE67BUobY-aCE822h-xtBW8qUJgcyjNQRAm57PHnlJNt6vqjHU3u7pcri_C-dtCD2dhZ5bLNwf91OY1&t=635340237699363331 | 200 OK Content-Length: 21823 Content-Type: application/x-javascript | clean |
http://www.lightthebridge.ca/ScriptResource.axd?d=OSi2HFnwGAr7vi2DzalSwHr-GMoMf8Uby0_ybeEwQtGoo40soyJYacOB1jGUtf9bth1AameW5mKKAdvce2JKwq-OhwjgzcQP-wRhhFHZxxZaOWvppw5jANl7mFm6EgMt0&t=ffffffffef6a4d4b | 200 OK Content-Length: 89391 Content-Type: application/x-javascript | clean |
http://www.lightthebridge.ca/ScriptResource.axd?d=9kn2MGGJj3QsM7w2t5TyuOH8a54pyxaDwRbduBRfa7Pza8vG7h94OcR6873P5r8Ptzqh2r3TC3eHLZseunXtlASmqyYO_SL3ZQjT0TnMn3_DXOv7yDBNnsOto8_gprqzHeTyUl4pSax3I-7Rk6YzPw2&t=ffffffffef6a4d4b | 200 OK Content-Length: 37293 Content-Type: application/x-javascript | clean |
http://www.lightthebridge.ca/ScriptResource.axd?d=DsxjNYnbsLKBh6yNYPahUxNkZ_pvXdZPBUeDkrQ2fFJhw2RHyl9Cej9CKzX_tAviD6jHXcbG34peD1CziuDeLrEIMROeW5_ABW4I0f0Z5zBdzUJjkHHgM-d64dnQniEEm_gin5M1THEs8-tjuBZG2JdTBA7QyISBXQOhE4UVxN41&t=ffffffffef6a4d4b | 200 OK Content-Length: 9358 Content-Type: application/x-javascript | clean |
http://www.lightthebridge.ca/script/jquery-1.9.1.js | 200 OK Content-Length: 268381 Content-Type: application/x-javascript | clean |